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(57) ABSTRACT 

A server system provides a client system with a number of 
on-line services including a log-in service. Once the server 
receives a request from the user for initiating access to the 
server, the log-in service accesses a user database for infor- 
mation including access privileges of the authorized user in 
relation to the other services available on the server. The 
server then generates an information packet containing this 
infor mation, a nd tfigsnaits^the information packet to the 
cHelijrjfa^ the 
server, requesting use_ of anoth er service offeree! by the 
sei^ rrTnTSnfSrma tion pacKel^rovide d^byThe server in 
res_rjpj3seUo„th^g^^e the 
seconaUea^e^ The server then regulates access 

by the client to this other service by usipRjhe information 
packet trans mitted back_to„the se ixer^froxnJh^^lient. Thus, 
acce£S^Qjke„uss.cd^ 

12 Claims, 12 Drawing Sheets 
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METHOD OF USING ELECTRONIC the Internet and slow response of remote servers. Latency 

TICKETS CONTAINING PRIVILEGES FOR can also be caused by Web pages including images. One 

IMPROVED SECURITY reason for this effect is that, when an HTML document 

references an image, it takes time to retrieve the image itself 

RELATED APPLICATION 5 after the referencing document has been retrieved. Another 
^ . . . . / reason is that, in the prior art, if the referencing document 

*r no^n^ 100 ^^r? application So/ does tf the size of the ^ the ^ m 

No. 08/656,924 entitled "Method of Transcoding Docu- u ^ , tU „, . Vi *u ■ •* i* 

' , ^ . , T . „ * „ generally cannot display the Web page until the image itself 

ments in a Network Environment Using a Proxy Server, Z u * • j m ' m # 

j t i t o n xt ?A,o ft i'> i . i . has been retrieved. Numerous others sources of latency exist 

filed Jun. 3, 1996, now U.S. Pat. No. 5,918,013 which is n . . « 7 , — f u * • j j • 

' „ ' ' 10 with respect to the Web. Therefore, what is needed is a 

incorporated herein by reference. * j • u i * * r • * * *u 

r J means for reducmg such latency, to eliminate some of the 

BACKGROUND OF THE INVENTION frustration which typically has been associated with brows- 
ing the Web. 

1. The Field of the Invention Security is another concern associated with the Internet. 
The present invention pertains to the field of client-server 15 Internet service providers (ISPs) generally maintain certain 

computer networking. More particularly, the present inven- information about each customer in a database. This infor- 

tion relates to a method of using electronic tickets containing mation may include information which a customer may not 

privileges for improved security. wish to become publicly known, such as social security 

2. The Prior State of the Art numbers and credit card numbers. Maintaining the confi- 
The number of people using personal computers has 20 dentiality of this information in a system that is connected to 

increased substantially in recent years, and along with this an ex P ensive publicly-accessible computer network like the 

increase has come an explosion in the use of the Internet. Internet ca » be Problematic. Further, the problem can be 

One particular aspect of the Internet which has gained aggravated by the fact that an ISP often provides numerous 

widespread use is the World-Wide Web ("the Web"). The different services, each of which has access to this database. 

Web is a collection of formatted hypertext pages located on 25 Allowing access to the database by many different entities 

numerous computers around the world that are logically crcates manv opportunities for security breaches to occur, 

connected by the Internet. Advances in network technology ^refore, what is needed is a way to improve the security 

and software providing user interfaces to the Web ("Web of confidential customer information in a server system 

browsers") have made the Web accessible to a large segment 3Q C0U P led t0 tne Internet, 

of the population. However despite the growth in the SUMMARY AND OBJECTS OF THE 

development and use of the Web, many people are still INVENTION 
unable to take advantage of this important resource. 

Access to the Web has been limited thus far mostly to According to the present invention, a server is coupled to 
people who have access to a personal computer. However, 35 a client, the client having an authorized user. The server 
many people cannot afford the cost of even a relatively provides the client with a number qfon-l ine serv ices includ- 
inexpensive personal computer, while others are either ia g a log-in service. The other services might include, for 
unable or unwilling to learn the basic computer skills that are example, e-mail. The server also has a user database con- 
required to access the Web. Furthermore, Web browsers in taining information about eachuse r includi ng the authorized 
the prior art generally do not provide the degree of user- 40 HserjhaUs^^ client, 
friendliness desired by some people, and many computer The present invention has the advantage of improved 
novices do not have the patience to learn how to use the security because only the_log-in service_,has access to the 
software. Therefore, it would be desirable to provide an user database. Once the server receives the request from the 
inexpensive means by which a person can access the Web us^fcT^nitiating access to the seryer,_t he Jog- in service 
without the use of a personal computer. In particular, it 45 o btains iaformatioloHEf^^ This informa- 
would be desirable for a person to be able to access the Web tion includes j^cce^p^mleges^f^ user in 
pages using an ordinary television set and a remote control, relajio?lK5^^ server. The 
so that the person feels more as if he or she is simply server then gej^irtes^aj^^ 

changing television channels, rather than utilizing a complex information, and^nmsjp^ to the 

computer network. 50 client. 

Prior art Web technology also has other significant limi- After the client logs into the server a nd receives the 

tations which can make a person's experience unpleasant infcjmation^acket, the client transauts-another-request to 

when browsing the Web. Web documents are commonly the^seoier. This requesjt_is„for_r^uesJmgja another 

written in HTML (Hypertext Mark-up Language). HTML s ervice offered iiv^the-^ex^ex^lheiiJharMhe-leg^-fr service, 

documents sometimes contain bugs (errors) or have features 55 Th e infor matjon-packet^rovideo^ in response 

that are not recognized by certain Web browsers. These bugs to the log-in re q uest is transmitted along with the second 

or quirks in a document can cause a Web browser to fail. req uest to the se rver. The server then regulates access by the 

Thus, what is needed is a means for reducing the frequency client to this other service^ by usin g, th e information p acket 

with which client systems fail due to bugs or quirks in tran smitted back to the server from the c lient. 

HTML documents. 60 ~Note that the second service does notiie ecjjo re-acc ess the 

Another problem associated with browsing the Web is u ser database to d etermine— wMul50K^c5ent_should be 

latency. People commonly experience long, frustrating gra nted access to the second_service. Instead, the second 

delays when browsing the Web. It is not unusual for a person seryice^deterrnines Jhe access privileg es of t\\ e cljent by 

to have to wait minutes after selecting a hypertext link for a reading the information packet pmyided hy fte client to the 

Web page to be completely downloaded to his computer and 65 secondservic e without re sortin g to a direct access of the user 

displayed on his computer screen. There are many possible databas e. Thus, the only time when the user database is 

causes for latency, such as heavy communications traffic on directly:a ccessed is_dua n£Jthfii nitial log-jn procedure. Thus, 
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the number of direct accesses of the user database is reduced tion. It will be evident, however, to one skilled in the art that 
compared to the databas e accessing of_ th e_priojuarLserver the present invention may be practiced without these specific 
s ystems_ in^hichje^achj ^ryi ce of the s erver directly accesses details. In other instances, well-known structures and 
thLdataJbase. Furthermore, onl^ffiFTc^ needs to devices are shown in block diagram form in order to avoid 
have ac cess to the user database. By minimizing the number 5 unnecessarily obscuring the present invention. 
of,services that have access to the user database, the r isk of The present invention includes various steps, which will 
securit y bre aches of the user database is likewise minimized. be described below. The steps can be embodied in machine- 
Other features of the present invention will be apparent executable instructions, which can be used to cause a 
from the accompanying drawings and from the detailed general-purpose or s pecial-pu rpo se processor progra mmed 
description which follow. io withjhejnstruc^ Alternatively, the 

steps of the present invention mig ht be performed by s pe- 

BRIEF DESCRIPTION OF THE DRAWINGS cifk hardware components ma t_contain harcrwiredjogc_for 

. . , , , , , performing the steps, or by any combination of programmed 

In order that the manner in which the above-recited and r — 2 — ; — a — * r — j ~ £ * — s - 

• * , , . c . . . , . , co mputer com ponents-and-custom hardware^components. 

other advantages and objects of the invention are obtamed, „ T ^rr 

? . . J . . c . . , . n 15 I. System Overview 

a more particular description ol the invention briefly rJ,^ . • ' nrt i„j a A •« „ i,„«„,« „ 

„ * , r r. Ine present invention is included in a system, known as 

described above will be rendered by reference to specific , 17 UT ,, TM P ... , t , T . 

, , - ,. . i . , r , , WebTV™, tor providing a user_with access to the Internet, 

embodiment thereof which are illustrated in the appended A ^ q[ a Webxv ™ clie^enemlly ac^el^riWebTV™ 

drawuigs, Understanding that these drawings depict only ^ yia a directK j ial te , hone (pQTS for „ lain M 

typical embodiments of the invention and are not therefore „„ 4 , . A icnv n ♦ * a c • ^ i 

J V . , , , . . . . . . . . .„ , 20 telephone service ), ISDN (Integrated Services Digital 

to be considered limiting of its scope, the invention will be K r , x nr „ rt ™~t;~„ ;„ *~ . , 

, „ , , i • j . , .« - , Network), or other similar connection, in order to browse the 

described and explained with additional specificity and ^ and receiye electronic maU and ^ 

detail through the use of the accompanying drawuigs in vafjous omer WebxVT „ network xtvi(XS ) 4 bTVT ™ 

which - 

network services are provided by WebTV™ servers using 

FIG. 1 illustrates several clients connected to a proxying 25 software residing within the WebTV™ servers in conjunc- 

server in a network; tiorj with software residing within a WebTVT™ client. 

FIG. 2 illustrates a client according to the present inven- FIG. 1 illustrates a basic configuration of the WebTV™ 

tion; network according to one embodiment. A number of 

FIG. 3 is a block diagram of a server according to the WebTV™ clients 1 are coupled to a modem pool 2 via 

present invention; 30 direct-dial, bi-directional data connections 29, which may be 

FIG. 4A illustrates a server including a proxy cache and telephone (POTS, i.e., "plain old telephone service"), ISDN 

a transcoder (Integrated Services Digital Network), or any other similar 

in .|| j * i_ j • ,. A type of connection. The modem pool 2 is coupled typically 

FIG. 4B illustrates databases used in a server according to . j_ • . u 4 , . t . t1 , . tU 

... s through a router, such as that conventionally known in the 

the present invention; 35 ^ tQ a number of remote servers 4 ^ a conventional 

FIG. 5 is a flow diagram illustrating a routine for network infrastructure 3, such as the Internet. The WebTV™ 

transcoding a document retrieved from a remote server using system also mc \ u fe s a WebTV™ server 5, which specifi- 

data stored in a persistent database; cally sup ports the WebTV™ clients 1. The WebTV™ clients 

FIG. 6 is a flow diagram illustrating a routine for 1 each have a connection to the WebTV™ server 5 either 

transcoding an HTML document for purposes of eliminating 40 directly or through the modem pool 2 and the Internet 3. 

bugs or undesirable features; Note that the modem pool 2 is a conventional modem pool, 

FIG. 7 is a flow diagram illustrating a routine for reducing such as those found today throughout the world providing 

latency when downloading a document referencing an image access to the Internet and private networks, 

to a client; Note that in this description, in order to facilitate expla- 

FIG. 8 is a flow diagram illustrating a routine for updating 45 nation the WebTV™ server 5 is generally discussed as if it 

documents stored in the proxy cache using data stored in a were a sin S le device, and functions provided by the 

persistent database* WebTV™ services are generally discussed as being per- 

FIG. 9 is a flow'diagram illustrating a routine used by a formed e b * such devioe - "^T' - ^ W ^ W ™ 

server for retrieving documents from another remote server; ^ 5 ma y emprise multiple physical and logical 

*a • . i . r * 50 devices connected m a distributed architecture, and the 

KG. 10 is a block diagram of a prior art server system vark)US d[scmscd bebw whicD are ided b the 

showing a relationship between various services and a W eblV™ services may actually be distributed among mul- 

database; tiple WebTV™ server devices. 

FIG. 11 is a block diagram of a server system according \\ Client System 

to the present invention showing a relationship between 55 pIG. 2 illustrates a WebTV™ client 1. The WebTV™ 

various services and a user database; and cl i enl \ includes an electronics unit 10 (hereinafter referred 

FIG. 12 is a flow diagram illustrating a routine used by a to as "the WebTV™ box 10"), an ordinary television set 12, 

server for regulating access to various services provided by and a remote control 11. In an alternative embodiment of the 

the server. present invention, the WebTV™ box 10 is built into the 

60 television set 12 as an integral unit. The WebTV™ box 10 
includes hardware and software for providing the user with 
a graphical user interface, by which the user can access the 

A method and apparatus are described for providing WebTV™ network services, browse the Web, send e-mail, 

electronic tickets containing access privileges for improved and otherwise access the Internet. 

security. In the following description, for purposes of 65 The WebTV™ client 1 uses the television set 12 as a 

explanation, numerous specific details are set forth in order display device. The WebTV™ box 10 is coupled to the 

to provide a thorough understanding of the present inven- television set 12 by a video link 6. The video link 6 is an RF 



DETAILED DESCRIPTION OF THE 
PREFERRED EMBODIMENTS 
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(radio frequency), S-video, composite video, or other A. Document Database 

equivalent form of video link. In the preferred embodiment, The basic purpose of the document database 61 is that, 

the client 1 includes both a standard modem and an ISDN after a document has once been retrieved by the server 5, the 

modem, such that the communication link 29 between the stored information can be used by the server 5 to speed up 

WebTV™ box 10 and the server 5 can be either a telephone 5 processing and downloading of that document in response to 

(POTS) connection 29a or an ISDN connection 29b. The all falure reqU ests for that" document. In addition, the 

WebTV™ box 10 receives power through a power line 7. transcoding functions and' variouTother functions of the 

Remote control 11 is operated by the user in order to Web TV™ service are facilitated by making use of the 

control the ; WebTV™ client 1 in browsing the Web, sending informatioa stored m the document database 61, as will be 

e-mail, and performing other Internet-related functions. The „ A , , , 

vi 7 ,ti7tm i_ m • j c * io described below. 

WebTV™ box 10 receives commands from remote control „ c 4 n^c*u * • •*• n 

11 via an infrared (IR) communication link. In alternative A Referrui & now Xo ( mG ' r ^ GS a 

embodiments, the link between the remote control 11 and the document request from a client 1 (step 501). The document 

WebTV™ box 10 may be RF or any equivalent mode of ret l uest Wl11 generally result from the user of the client 1 

transmission activating a hyper text anchor (link) on a Web page. The act 

III. Server System 35 °f activating a hypertext anchor may consist of clicking on 

The WebTV™ server 5 generally includes one or more underlined text in a displayed Web page using a mouse, for 

computer systems generally having the architecture illus- example. The document request will typically (but not 

trated in FIG. 3. It should be noted that the illustrated always) include the URL (Uniform Resource Locator) or 

architecture is only exemplary; the present invention is not other address of the selected anchor. Upon receiving the 

constrained to this particular architecture. The illustrated 20 document request, the server 5 optionally accesses the 

architecture includes a central processing unit (CPU) 50, docum ent database 61 to retrieve stored information relating 

random access memory (RAM) 51, read-only memory to t he req ues ted document (step 502). It should be noted that 

(ROM) 52, a mass storage device 53, a modem 54, a network the d ocument database 61 is not n ecessarily accessed in 

interface card (NIC) 55, and various other input/output (I/O) e very case . The information retrieved from the document 

devices 56. Mass storage device 53 includes a magnetic, 25 databa se 61 is u s ed bv the server 5 for determining, among 

optical, or other equivalent storage medium. I/O devices 56 other ' thin gs, howtong a reques ted document has been 

may include any or all of devices such as a display monitor, cacn e T7nd7o7^te to the do^HeaMS-fetfll valid. The 

keyboard, cursor control device, etc. Modem 54 is used to criteria for determinTng validity of the stored document are 

communicate data to and from remote servers 4 via the discussed bek)w ^ serv£f 5 retrieves ^ from 

^ noted above, the WebTV™ server 5 may actually 30 the cac * e 65 * the , st ° red docu °? ent * valid ^ otherwise, the 

comprise multiple physical and logical devices connected in server * retneves the document from the appropriate remote 

a distributed architecture. Accordingly, NIC 55 is used to ^ 4 ( ste P 503 )* ^ 5 automatically transcodes 

provide data communication with other devices that are part the document as necessary based on the information stored 

of the WebTV™ services. Modem 54 may also be used to in the document database 61 (step 503). The transcoding 

communicate with other devices that are part of the 35 functions are discussed further below. 

WebTV™ services and which are not located in close The document database 61 includes certain historical and 

geographic proximity to the illustrated device. diagnostic information for every Web page that is accessed 

The WebTV™ server 5 acts as a proxy in providing the at any time by a WebTV™ client 1. As is well known, a Web 

WebTV™ client 1 with access to the Web and other page may correspond to a document written in a language 

WebTV™ services. More specifically, WebTV™ server 5 40 such as HTML (Hypertext Mark-Up Language), VRML 

functions as a "caching proxy." FIG. 4A illustrates the (Virtual Reality Modelling Language), or another suitable 

caching feature of the WebTV™ server 5. In FIG. 4A, the language. Alternatively, a Web page may represent an 

WebTV™ server 5 is functionally located between the image, or a document which references one or more images. 

WebTV™ client 1 and the Internet infrastructure 3. The According to the present invention, once a document or 

WebTV™ server 5 includes a proxy cache 65 which is 45 image is retrieved by the WebTV™ server 5 from a remote 

functionally coupled to the WebTV™ client 1. The proxy server 4 for the first time, detailed information on this 

cache 65 is used for temporary storage of Web documents, document or image is stored permanently in the document 

images, and other information which is frequently used by database 61. More specifically, for every Web page that is 

either the WebTV™ client 1 or the WebTV™ server 5. retrieved from a remote server 4, any or all of the following 

A document transcoder 66 is functionally coupled 50 data are stored in the document database 61: 

between the proxy cache 65 and the Internet infrastructure 3. i) information identifying bugs (errors) or quirks in the 

The document transcoder 66 includes software which is used Web page, or undesirable effects caused when the Web 

to automatically revise the code of Web documents retrieved page is displayed by a client 1; 

from the remote servers 4, for purposes which are described 2 ) relevant bug-finding algorithms; 

bC iS W ' L ^,™ • , , _. L 55 3 ) the date and time the Web page was last retrieved; 

The WebTV™ service provides a document database 61 4 , , . , 4 . 4t _ „, ^ . 4l 

j j * i_ c<y mi . j ■ t,j„ Ary tl 4) the date and time the Web page was most recently 

and a user database 62, as illustrated in FIG. 4B. The user ' altered b the author' 

database 62 contains information that is used to control _ t , ^ r ' . . , ___ , . 

certain features relating to access privileges and capabilities 5 > *J chcc f 5 T for determimn g whether the Web P a S e has 

of the user of the client 1. This information is used to 60 altered ' 

regulate initial access to the WebTV™ service, as well as to 6 ) the size of the Web P a S e ( in terms of ™ mor y)'> 

regulate access to~ the individual services provided by the 7) the type of Web page (e.g., HTML document, image, 

WebTV™ system, as will be described below. The docu- etc *)i 

ment database 61 is a persistent database which stores 8) a list of hypertext anchors (links) in the Web page and 

certain diagnostic and historical information about each 65 corresponding URLs; 

document and image retrieved by the server^, as is now 9) a list of the most popular anchors based on the number 

described. ~" of "hits" (requests from a client 1); 
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10) a list of related Web pages which can be prefetched; of retrieving and downloading a document to the client 1 

11) whether the Web page has been redirected to another increases latency and decreases throughput, it is not desir- 
remote server 4* a ^ e t0 buffer all documents. Therefore, the transcoder 66 

12) a redirect address (if appropriate)- accesses and uses information in the document database 61 

y./ x . 5 relating to the requested document to first determine whether 

13) whether the redirect (if any) is temporary or a rcquested documen t must be buffered for purposes of 
permanent, and if permanent, the duration of the redi- transcodin g, before the document is retrieved from the 
rect; remote server 4. 

14) if the Web page is an image, the size of the image in i n the deferred mode, transcoding is deferred until after a 
terms of both physical dimensions and memory space; 10 requested document has been downloaded to a client 1. The 

15) the sizes of in-line images (images displayed in text) deferred mode therefore reduces latency experienced by the 
referenced by the document denning the Web page; client 1 in receiving the document. Transcoding may be 

16) the size of the largest image referenced by the performed immediately after downloading or any time there- 
document* after. For example, it may be convenient to perform 

17) information identifying any image maps in the Web 15 transcoding during periods of low usage of WebTV™ 
7 services, such as at night. This mode is useful tor certain 
P a £ e ' types of transcoding which are not mandatory. 

18) whether to resize any images corresponding to the L Transcoding for Bugs and Quirks 

Web page; Q ne CQara cteristic of some prior art Web browsers is that 

19) an indication of any forms or tables in the Web page; 2 o they may experience failures ("crashes") because of bugs or 

20) any unknown protocols; unexpected features ("quirks") that are present in a Web 

21) any links to "dead" Web pages (i.e., pages which are document. Alternatively, quirks in a document may cause an 
no longer active)' undesirable result, even though the client does not crash. 

22) the latency and throughput of the remote server 4 on Therefore, the transcoding feature of the present invention 
which the Web page is located; 25 Prides a means for correcting certain bugs and quirks in a 

f , Web document. To be corrected by the transcoder 66, bugs 

23) the character set of the document; and quirks mugt be identifiable by software running on the 

24) the vendor of the remote server 4 on which the Web server 5. Consequently, the transcoder 66 will generally only 
page is located; correct conditions which have been previously discovered, 

25) the geographic location of the remote server 4 on 30 such as those discovered during testing or reported by users, 
which the Web page is located; Once a bug or quirk is discovered, however, algorithms are 

26) the number of other Web pages which reference the added to the transcoder 66 to both detect the bug or quirk in 
subject Web page; tne mture m anv Web document and to automatically correct 

27) the compression algorithm used by the image or ll * , n , . i 
document" 35 There are countless possibilities of bugs or quirks which 

' , might be encountered in a Web document. Therefore, no 

28) the compression algorithm chosen by the transcoder; aUempt win be made hereifl tQ provide an exhaustive Ust> 

29) a value indicating the popularity of the Web page Nonetheless, some examples may be useful at this point, 
based on the number of hits by clients; and Consider, for example, an HTML document that is down- 

30) a value indicating the popularity of other Web pages 40 loaded from a remote server 4 and which contains a table 
which reference the subject Web page. having a width specified in the document as "0." This 

B. Transcoding condition might cause a failure if the client were to attempt 

As mentioned above, the WebTV™ services provide a to display the document as written. This situation therefore, 

transcoder 66, which is used to rewrite certain portions of can be detected and corrected by the transcoder 66. Another 

the code in an HTML document for various purposes. These 45 example is a quirk in the document which causes quotations 

purposes include: (1) correcting bugs in documents; (2) to be terminated with too many quotation marks. Once the 

correcting undesirable effects which occur when a document quirk is first detected and an algorithm is written to recog- 

is displayed by the client 1; (3) improving the efficiency of nize it, the transcoder 66 can automatically correct the quirk 

transmission of documents from the server 5 to the client 1; in any document. 

(4) matching hardware decompression technology within 50 If a given Web document has previously been retrieved by 

the client 1; (5) resizing images to fit on the television set 12; the server 5, there will be information regarding that docu- 

(6) converting documents into other formats to provide ment available in the document database 61 as described 

compatibility; (7) reducing latency experienced by a client 1 above. The information regarding this document will 

when displaying a Web page with in-line images (images include whether or not the document included any bugs or 

displayed in text); and, (8) altering documents to fit into 55 quirks that required transcoding when the document was 

smaller memory spaces. previously retrieved. The transcoder 66 utilizes this infor- 

There are three transcoding modes used by the transcoder mation to determine whether (1) the document is free of 

66: (1) streaming, (2) buffered, and (3) deferred. Streaming bugs and quirks, (2) the document has bugs or quirks which 

transcoding refers to the transcoding of documents on a can be remedied by transcoding on the fly, or (3) the 

line-by-line basis as they are retrieved from a remote server 60 document has bugs or quirks which cannot be corrected on 

4 and downloaded to the client 1 (i.e., transcoding "on the the fly (i.e., buffering is required). 

fly"). Some documents, however, must first be buffered in FIG. 6 illustrates a routine for transcoding a Web docu- 

the WebTV™ server 5 before transcoding and downloading ment for purposes of eliminating bugs and quirks. Initially, 

them to the client 1. A document may need to be buffered the server 5 receives a document request from the client 1 

before transmitting it to the client 1 if the type of changes to 65 (step 601). Next, the document database 61 is accessed to 

be made can only be made after the entire document has determine whether or not the requested document has been 

been retrieved from the remote server 4. Because the process previously retrieved (step 602). If the document has not been 
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previously retrieved, then the server 5 retrieves the docu- 
ment from the remote server 4 (step 609). Next, the retrieved 
document is analyzed for the presence of bugs or unusual 
conditions (step 610). Various diagnostic information is then 
stored in the document database 61 as a result of the analysis 
to note any bugs or quirks that were found (step 611). If any 
bugs or quirks were found which can be corrected by the 
transcoder 66, the document is then transcoded and saved to 
the proxy cache 65 (step 612). The transcoded document is 
then downloaded to the client 1 (step 613). It should be noted 
that transcoding can be deferred until after the document has 
been downloaded, as described above; hence, the sequence 
of FIG. 6 is illustrative only. 

If (in step 602) the requested document had been previ- 
ously retrieved, then it is determined whether the requested 
document is still valid (step 603) and whether the document 
is present in the proxy cache 65 (step 604). If the document 
is no longer valid, then the document is retrieved from the 
remote server 4, analyzed for bugs and quirks, transcoded as 
required, and then downloaded to the client 1 as described 
above (steps 609-613). Methods for determining validity of 
a document are discussed below. If the document is still 
valid (step 603) and the document is present in the cache 65, 
the document is downloaded to the client 1 in its current 
form (as it is stored in the cache), since it has already been 
transcoded (step 608). 

The document, however, may be valid but not present in 
the cache. This may be the case, for example, if the docu- 
ment has not been requested recently and the cache 65 has 
become too full to retain the requested document. In that 
case, the document is retrieved again from the remote server 
4 (step 605) and then transcoded on the basis of the 
previously-acquired diagnostic information stored within 
the database 61 for that document. The document is then 
saved to the cache 65 (step 606). Note that because the 
document is still valid, it is assumed that the diagnostic 
information stored in the document database 61 for that 
document is still valid and that the transcoding can be 
performed on the basis of that information. Accordingly, 
once the document is transcoded, the transcoded document 
is downloaded to the client 1 (step 607). Again, note that 
transcoding can be deferred until after the document has 
been downloaded in some cases. 

The validity of the requested document can be determined 
based on various different criteria. For example, some 
HTML documents specify a date on which the document 
was created, a length of time for which the document will be 
valid, or both. The validity determination can be based upon 
such information. For example, a document which specifies 
only the date of creation can be automatically deemed 
invalid after a predetermined period of time has passed. 

Alternatively, validity can be based upon the popularity of 
the requested document. "Popularity" can be quantified 
based upon the number of hits for that document, which is 
tracked in the document database 61. For example, it might 
be prudent to simply assign a relatively short period of 
validity to a document which is very popular and a longer 
period of validity to a document which is less popular. 

Another alternative basis for the validity of a document is 
the observed rate of change of the document. Again, data in 
the persistent document database 61 can be used. That is, 
because the document database 61 stores the date and time 
on which the document was last observed to change, the 
server 5 can approximate how often the document actually 
changes. A document or image which is observed to change 
frequently (e.g., a weather map or a news page) can be 
assigned a relatively short period of validity. It will be 
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recognized that numerous other ways of determining valid- 
ity are possible. 

2. Transcoding to Reduce Latency 

Another purpose for transcoding is to allow documents 
requested by a client 1 to be displayed by the client 1 more 
rapidly. Many HTML documents contain references to 
"inline" images, or images that will be displayed in text in 
a Web page. The normal process used in the prior art to 
display a Web page having in-line images is that the HTML 
document referencing the image is first downloaded to the 
client, followed by the client's requesting the referenced 
image. The referenced image is then retrieved from the 
remote server on which it is located and downloaded to the 
client. One problem associated with the prior art, however, 
is that the speed with which a complete Web page can be 
displayed to the user is often limited by the time it takes to 
retrieve in-line images. One reason for this is that it simply 
takes time to retrieve the image itself after the referencing 
document has been retrieved. Another reason is that, in the 
prior art, if the referencing document does not specify the 
size of the image, the Web page generally cannot be dis- 
played until the image itself has been retrieved. The present 
invention overcomes these limitations. 

According to the present invention, information stored in 
the document database 61 regarding the in-line images is 
used to transcode the referencing document in order to 
reduce latency in displaying the Web page. Once any docu- 
ment which references an in-line image is initially retrieved 
by the server 5, the fact that the document references an 
in-line image is stored in the document database 61. In 
addition, the size of the image is determined, either from the 
document (if specified) or from the image itself, and then 
stored in the document database 61. Consequently, for 
documents which do not specify the size of their in-line 
images, the size information stored in the database 61 is then 
used the next time the document is requested in order to 
reduce latency in downloading and displaying the Web page. 

Refer now to FIG. 7, which illustrates a routine for 
reducing latency when downloading a document referencing 
an image to a client 1. Assume that a client 1 sends a request 
to the server 5 for an HTML document containing a refer- 
ence to an in-line image. Assume further that the size of the 
image is not specified in the document itself. Initially, the 
server 5 determines whether that document has been previ- 
ously retrieved (step 701). If not, the standard initial 
retrieval and transcoding procedure is followed (step 706), 
as described in connection with FIG. 6. If, however, the 
document has been previously retrieved, then the transcoder 
66 accesses the size information stored in the document 
database 61 for the in-line image (step 702). Based on this 
size information, the HTML document is transcoded such 
that, when the Web page is initially displayed by the client 
1, the area in which the image belongs is replaced by a blank 
region enveloping the shape of the image (step 703). Thus, 
any in-line image referenced by a document is displayed 
initially as a blank region. Consequently, the client 1 can 
immediately display the Web page corresponding to the 
HTML document even before the referenced image has been 
retrieved or downloaded (i.e., even before the size of the 
image is known to the client 1). 

As the transcoded HTML document is downloaded to the 
client, the image is retrieved from the appropriate remote 
server 4 (step 704). Once the image is retrieved from the 
remote server 4 and downloaded to the client 1, the client 1 
replaces the blank area in the Web page with the actual 
image (step 705). 
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3. Transcoding to Display Web Pages on a Television 

As noted above, the client 1 utilizes an ordinary television 
set 12 as a display device. However, images in Web pages 
are generally formatted for display on a computer monitor, 
not a television set. Consequently, the transcoding function 
of the present invention is used to resize images for display 
on the television set 12. This includes rescaling images as 
necessary to avoid truncation when displayed on the televi- 
sion set 12. 

It should be noted that prior art Web browsers which 
operate on computer monitors typically use resizable win- 
dows. Hence, the size of the visible region varies from client 
to client. However, because the web browser used by the 
WebTV™ client 1 is specifically designed for display on a 
television set, the present invention allows documents and 
images to be formatted when they are cached. 

4. Transcoding for Transmission Efficiency 
Documents retrieved by the server 5 are also transcoded 

to improve transmission efficiency. In particular, documents 
can be transcoded in order to reduce high frequency com- 
ponents in order to reduce interlace flicker when they are 
displayed on a television set. Various methods for coding 
software or hardware to reduce perceptual interlace flicker 
are described in co-pending U.S. patent application Ser. No. 
08/656,923, filed on Jun. 3, 1996. 

Documents can also be transcoded in order to lower the 
resolution of the displayed Web page. Reducing the resolu- 
tion is desirable, because images formatted for computer 
systems will generally have a higher resolution than the 
NTSC (National Television Standards Committee) video 
format used by conventional television sets. Since the NTSC 
video does not have the bandwidth to reproduce the reso- 
lution of computer-formatted images, the bandwidth con- 
sumed in transmitting images to the client 1 at such a high 
resolution would be wasted. 

Transcoding is also used by the present invention to 
recode a document using new formats into older, compatible 
formats. Images are often displayed in the JPEG (Joint 
Picture Experts Group) format or the GIF image format. 
JPEG often consumes less bandwidth than GIF, however. 
Consequently, images which are retrieved in GIF format are 
sometimes transcoded into JPEG format. Methods for gen- 
erally converting images between GIF and JPEG formats are 
well known. 

Other uses for transcoding include transcoding audio files. 
For example, audio may be transcoded into different formats 
in order to achieve a desired balance between memory 
usage, sound quality, and data transfer rate. In addition, 
audio may be transcoded from a file format (e.g., an ".AU" 
file) to a streaming format (e.g., MPEG 1 audio). Yet another 
use of audio transcoding is the transcoding of MIDI 
(Musical Instrument Digital Interface) data to streaming 
variants of MIDI. 

Additionally, documents or images requiring a large 
amount of memory (e.g., long lists) can be transcoded in 
order to consume less memory space in the client 1. This 
may involve, for examples separating a large document or 
image into multiple sections. For example, the server 5 can 
insert tags at appropriate locations in the original document 
so that the document appears to the client 1 as multiple Web 
pages. Hence, while viewing a given page representing a 
portion of the original document, the user can view the next 
page (i.e., the next portion of the original document) by 
activating a button on the screen as if it were an ordinary 
hypertext anchor. 

As noted above, the server 5 functions as a proxy on 
behalf of the client 1 for purposes of accessing the Web. The 



document database 61 is used in various ways to facilitate 
this proxy role, as will now be described. 

1. Updating Cached Documents 

It is desirable to store frequently-requested HTML docu- 
5 ments and images in the proxy cache 65 to further reduce 
latency in providing Web pages to the client 1. However, 
because some documents and images change over time, 
document in the cache 65 will not be valid indefinitely, as 
mentioned above. A weather map or a news-related Web 
10 page, for example, are likely to be updated quite frequently. 
Consequently, it is desirable for the server 5 to have the 
ability to estimate the frequency with which documents 
change, in order to determine how long a document can 
safely remain within the proxy cache 65 without being 
15 updated. 

The persistent database 65 is used to store the date and 
time of the last several fetches of each document and image 
retrieved from a remote server 4, along with an indication of 
any changes that were detected, if any. A document or image 

20 which has been stored in the cache 65 is then retrieved on a 
periodic basis to determine if it has been changed. Change 
status information indicating whether the document has 
changed since the previous fetch is then stored in the 
document database 61. If no changes are detected, then the 

25 time interval between fetches of this document is increased. 
If the document has changed, the time interval is maintained 
or decreased. As a result, items in the cache 65 which change 
frequently will be automatically updated at frequent 
intervals, whereas documents which do not change often 

30 will be replaced in the cache less frequently. 

FIG. 8 illustrates a routine for updating documents stored 
in the proxy cache 65 using data stored in the document 
database 61. Assume a document X has been stored in the 
proxy cache 65. Document X remains in the cache 65 until 

35 a predetermined update period T a expires (step 801). Upon 
the expiration of the update period T a , the document X is 
again retrieved from the appropriate remote server 4 (step 
802). The newly-retrieved document X is then compared to 
the cached version of document X (step 803). If the docu- 

40 ment has changed, then the cached version of document X 
is replaced with the newly-retrieved version of document X 
(step 806). If not, then the update period T a is increased 
according to a predetermined time increment M x (step 804). 
In any case, the date and time and the change status of 

45 document X is saved to the document database 61 (step 
805). 

2. Document and Image Prefetching 

The document database 61 is also used by the server 5 to 
store prefetching information relating to documents and 

50 images. In particular, the database stores, for each document 
that has been retrieved, a fist of images referenced by the 
document, if any, and their locations. Consequently, the next 
time a document is requested by a client 1, the images can 
be immediately retrieved by the server 5 (from the cache 65, 

55 if available, or from the remote server 4), even before the 
client 1 requests them. This procedure improves the speed 
with which requested Web pages are downloaded to the 
client. 

The document database 61 is also used to facilitate a 
60 process referred to as "server-advised client prefetching." 
Server-advised client prefetching allows the server 5 to 
inform the client 1 of documents or images which are 
popular to allow the client 1 to perform the prefetching. In 
particular, for any given document, a list is maintained in the 
65 server 5 of the most popular hypertext anchors in that 
document (i.e., those which have previously received a large 
number of hits). When that document is requested by the 
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client 1, the server 5 provides the client 1 with an indication times when the server 5 is severely overloaded with network 

of these popular links. traffic, the server 5 may instruct the client 1 to bypass the 

3. Redirects server 5 and contact remote servers 4 directly for a specified 
Web pages are sometimes forwarded from the remote time or until further notice. Or, the server 5 can enter a 

server on which they are initially placed to a different 5 flexible backoff mode in which the client 1 will be instructed 

location. Under the HTTP (Hypertext Transport Protocol), t0 contact a remote server 4 directly only for certain Web 

such forwarding is sometimes referred to as a "redirect." Sltes for a hm ^ Pf l . ime * 

When an HTML document is initially stored on one remote D ■ A«k ^ VjfebTV™ Services 

server and then later transferred to another remote server, the The WebTV™ server 5 provides vanous services to the 

c . .„ . t . r client 1, such as proxy ing and electronic mail ( e-mail ). In 

first remote server will provide, in response to a request for 10 lL . * /-a-* u . . 4 , v „ . 

iL t , . • - • , ai_ j . u i_ the pnor art, certain difficulties are associated with allowing 

that document, an indication that the document has been a ^ uter ^ QS& tQ differem Qf ^ Intem * 

transferred to a new remote server This indication generally ^ ^ w[n now be lained with reference to FIG 10 
includes a forwarding address ( redirect address ), which is FIG. 10 illustrates a client-server system according to one 
generally a URL. p^ or art embodiment. The server 76 provides various ser- 
in the prior art, when a computer requesting a Web page is vices A, B, and C. The server 76 includes a database 71 for 
receives a redirect, it must then submit a new request to the storing information on the user's access privileges to ser- 
redirect address. Having to submit a second request and wait vices A, B, and C. The client 75 of the embodiment of FIG. 
for a second response consumes time and increases overall 10 accesses any of services A, B, and C by contacting that 
latency. Consequently, the present invention uses the docu- service directly. The contacted service then accesses the 
ment database 61 to store any redirect address for each 20 database 71, which stores the access privileges of the client 
document or image. Any time a redirected document is 75, to determine whether the client 75 should be allowed to 
requested, the server 5 automatically accesses the redirect access that service. Hence, each service provided by the 
address to retrieve the document. The document or image is server 76 requires direct access to the database 71. This 
provided to the client 1 based on only a single request from architecture results in a large number of accesses being made 
the client 1. The change in location of the redirected docu- 25 to the database 71, which is undesirable. In addition, the fact 
ment or image remains completely transparent to the client that each service independently has access to the database 71 
1. raises security concerns. Specifically, it can be difficult to 
FIG. 9 illustrates a routine performed by the server 5 in isolate sensitive user information. The present invention 
accessing documents which may have been forwarded to a overcomes such difficulties using a technique which is now 
new remote server. Initially, the server 5 receives a request 30 described. 

for a document, which generally includes an address (step 1. Tickets Containing Privileges and Capabilities 

901). The server 5 then accesses the document database 61 As shown in FIG. 11, the server 5 provides a number of 

to determine whether there is a redirect address for the services D,E, and F 77, 79, and 80, respectively, and a log-in 

requested document (step 902). If there is no redirect service 78. The log-in service 78 is used specifically to 

address, then the server 5 accesses a remote server 4 based 35 control initial log-on procedures by a client 1. The log-in 

on the address provided in the document request from the service 78 has exclusive access to the user database 62 

client 1 (step 903). Assuming that the remote server 4 does (discussed above with respect to FIG. 4B). The log-in 

not respond to the server 5 with a redirect (step 904), the service 78 and the user database 62 are located within a first 

document is retrieved and downloaded to the client 1 by the security zone 84. Service D is located within a second 

server 5 (step 907). If, however, a redirect address was 40 security zone 86, while services E and F are contained 

stored in the document database 61 (step 902), then the within a third security zone 88. Note that the specific 

server 5 accesses the requested document according to the arrangement of security zones 84, 86, and 88 with respect to 

redirect address (step 906). Or, if the remote server 4 services D, E, and F is illustrative only, 

responded with a redirect (step 904), then the server 5 saves The user database 62 of the present invention stores 

the redirect address to the document database 61 (step 905) 45 various information pertaining to each authorized user of a 

and accesses the requested document according to the redi- client 1. This information includes account information, a 

rect address (step 906). list of the WebTV™ services that are available to the 

4. Other Proxy Functions particular user, and certain user preferences. For example, a 
The document database 61 also stores information relat- particular user may not wish his client 1 to be used to access 

ing to the performance of each remote server 4 from which 50 Web pages having adult-oriented subject matter, 

a document is retrieved. This information includes the Consequently, the user would request that his account be 

latency and throughput of the remote server 4. Such infor- filtered to prevent access to such material. This request 

mation can be valuable in instances where a remote server would then be stored as part of the user data in the user 

4 has a history of responding slowly. For example, when the database 62. 

document is requested, this knowledge can be used by the 55 With regard to user preferences, the hypertext links 

server 5 to provide a predefined signal to the client 1. The selected by a given user can be tracked, and those having the 

client 1 can, in response to the signal, indicate to the user that largest number can be stored in the user database 62. The list 

a delay is likely and give the user the option of canceling the can then be provided to the client 1 for use in generating a 

request. menu screen of the user's favorite Web sites, to allow the 

5. Backoff Mode 60 user to directly access those Web sites. The list can also be 
Although the server 5 generally operates in the proxy used by the server 5 to analyze the user's interests and to 

mode, it can also enter a "backoff mode" in which the server formulate and provide to the user a list of new Web sites 

5 does not act as a proxy, or the server 5 performs only which the user is likely to be interested in. The list might be 
certain aspects of the normal proxying functions, For composed by associated key words in Web pages selected by 
example, if the proxy cache 65 is overloaded, then the server 65 the user with other Web pages. 

5 can enter a backoff mode in which documents are not Referring again to FIG. 11, in response to a log-on request 

cached but are transcoded as required. Alternatively, during by a client 1, the log-in service 78 consults the user database 
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62 to determine if access to the server 5 by this particular client 1 can access any of the redundant providers of a given 

client 1 is authorized. Assuming access is authorized, the service using the same URL. This procedure effectively adds 

log-in service 78 retrieves certain user information pertain- a level of indirection to all accesses made to any WebTV™ 

ing to this particular client 1 from the user database 62. The service and automatically adds redundancy to the proxy 

log-in service then generates a "ticket" 82, which is an 5 service. It should also be noted that separate service names 

information packet including the retrieved information. The can also refer to the same service. 

ticket 82 is then provided to the client 1 which requested Assume, for example, that the e-mail service provided by 

access. the WebTV™ system is designated by the service name 

The ticket 82 includes all information necessary to "WTV-mailto." A client 1 can access any provider of this 

describe the access privileges of a particular user with 10 e-mail service using the same URL. The client 1 merely 

respect to all services provided by the server 5. For example, chooses the appropriate port number and IP number to 

the ticket may include the user name registered to the client distinguish between providers. If the client 1 is unable to 

1, the e-mail address assigned to client 1, and any filtering connect to one e-mail provider, it can simply contact the next 

requested by the user with respect to viewing Web sites. one in the list. 

Each time the user requests access to one of the services D, is Thus, at log-in time, a client 1 is provided with both a 

E, or F, the client 1 submits a copy of the ticket 82 to that ticket containing privileges and capabilities as well as a list 

service. The requested service can then determine from the of service providers, as illustrated in FIG. 12. Initially, the 

copy of the ticket 82 whether access to that service by that log-in service 78 determines whether the user of client 1 is 

client 1 is authorized and, if so, any important information a valid user (step 1201). If not, log-in is denied (step 1205). 

relating to such access. 20 If the user is a valid user, then the log-in service 78 gathers 

None of the services provided by the server 5, other than user information from the user database 62 and generates a 

the log-in service 78, has access to the user database 62. ticket 82 (step 1202). The log-in service 78 also generates 

Hence, any security-sensitive information can be isolated the above -described list of services (step 1203). The ticket 

within the user database 62 and the log-in service 78. Such 82 and the list of services are then downloaded to the client 

isolation allows the individual services provided by the 25 1 (step 1204). 

server 5 to be placed within separate "firewalls" (security 3. Asynchronous Notification to Clients by Server 

regions), illustrated as security zones 84, 86, and 88. In Another limitation associated with prior art Internet serv- 

addition, this technique greatly reduces the number of ers is the inability to provide asynchronous notification 

accesses required to the user database 62 compared to the information to the client in the absence of a request from the 

prior art embodiment illustrated in FIG. 10. 30 client to do so. It would be desirable, for example, for a 

2. Redundancy of Services and Load Balancing server to notify a client on its own initiative when a 

The present invention also includes certain redundancies particular Web page has changed or that a particular service 

in the various services provided by the server 5. In particular, is inaccessible. The server 5 of the present invention pro- 

a given service (e.g., e-mail) can be provided by more than vides such capability, and the client 1 is configured to 

one physical or logical device. Each such device is consid- 35 receive and decode such notifications. For example, the 

ered a "provider" of that service. If a given provider is client 1 can receive updates of its listing of service providers 

overloaded, or if the client 1 is unable to contact that from the server 5 at various points in time, as already 

provider, the client 1 can contact any of the other providers described. Similarly, if a particular service provider becomes 

of that service. When the server 5 receives a log-in request unavailable, that fact will be automatically communicated to 

from a client 1, in addition to generating the above-described 40 the client 1. As another example, if e-mail addressed to the 

ticket 82, the log- in service 78 dynamically generates a list user has been received by the server 5, then the server 5 will 

of available WebTV™ services and provides this list to the send a message to the client 1 indicating this fact. The client 

client 1. 1 will then notify the user that e-mail is waiting by a message 

The server 5 can update the list of services used by any displayed on the television set 12 or by an LED (light 

client 1 to reflect services becoming unavailable or services 45 emitting diode) built into the housing of WebTV™ box 10. 

coming on-line. Also, the list of services provided to each Thus, a method and apparatus have been described for 

client 1 can be updated by the server 5 based upon changes providing electronic tickets having access privileges for 

in the loading of the server 5, in order to optimize traffic on improved security. The present invention may be embodied 

the server 5. In addition, a client=s list of services can be in other specific forms without departing from its spirit or 

updated by services other than the log-in service 78, such 50 essential characteristics. The described embodiments are to 

that one service can effectively introduce another service to be considered in all respects only as illustrative and not 

the client 1. For example, the e-mail service may provide a restrictive. The scope of the invention is, therefore, indicated 

client 1 with the name, port number and IP of its address by the appended claims rather than by the foregoing descrip- 

book service. Thus, one service can effectively, and securely tion. All changes which come within the meaning and range 

within the same chain of trust, introduce another service to 55 of equivalency of the claims are to be embraced within their 

the client 1. scope. 

This list of services includes the name of each service, a What is claimed and desired to be secured by United 

port number for the provider of each service, and an IP States Letters Patent is: 

(Internet Protocol) for each service. Different providers of 1. In a networked computer system includes a server 

the same service are designated by the same name, but 60 system having a plurality of remote servers and a plurality 

different port numbers and/or IPs. Note that in a standard of proxy servers, and a plurality of client systems, all of 

URL, the protocol is normally specified at the beginning of which are logically interconnected so that the client systems 

the URL, such as "HTTP: //www. ..." under the HTTP can access informational content stored at the one or more 

protocol. However, according to the present invention, the remote servers, and wherein at least one of the client systems 

normal protocol designation (i.e., "HTTP") in the URL is 65 is comprised of an electronics unit which provides a graphi- 

replaced with the name of the service, since the port number cal user interface by which the Internet can be accessed and 

and IP for each service are known to the client 1. Hence, the browsed using a conventional television set as a display, a 
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method of increasing security of user database information 
retained by the server system by reducing the number of 
direct accesses of such user database information when 
accessing requested services provided by the server system, 
comprising steps for: 5 
at one of the servers of the server system, determining the 

validity of a log-in request received from a client 

system; 

as part of a log-in service, obtaining at the server which 
received the log- in request, access to a user database 10 
and preparing an information packet that includes 
access privileges in relation to other services available 
in the server system; 

downloading to the client system the prepared informa- 
tion packet; and 

thereafter, for any other service for which access is 
requested by the client system, the server at which said 
any other service request is received regulating access 
to the requested service based on a copy of the infor- 2Q 
mation packet submitted with the client system request, 
whereby access to the user database is limited to the 
initial log-in service. 

2. In a networked computer system includes a server 
system having a plurality of remote servers and a plurality 25 
of proxy servers, and a plurality of client systems, all of 
which are logically interconnected so that the client systems 
can access informational content stored at the one or more 
remote servers, and wherein at least one of the client systems 

is comprised of an electronics unit which provides a graphi- 3Q 
cal user interface by which the Internet can be accessed and 
browsed using a conventional television set as a display, a 
computer program product for implementing a method of 
increasing security of user database information retained by 
the server system by reducing the number of direct accesses 35 
of such user database information when accessing requested 
services provided by the server system, comprising a com- 
puter readable medium for storing executable instructions 
for implementing the method, and wherein the method is 
comprised of steps for: 40 
at one of the servers of the server system, determining the 

validity of a log-in request received from a client 

system; 

as part of a log-in service, obtaining at the server which 
received the log-in request, access to a user database 45 
and preparing an information packet that includes 
access privileges in relation to other services available 
in the server system; 

downloading to the client system the prepared informa- 
tion packet; and thereafter, for any other service for 50 
which access is requested by the client system, the 
server at which said any other service request is 
received regulating access to the requested service 
based on a copy of the information packet submitted 
with the client system request, whereby access to the 55 
user database is limited to the initial log-in service. 

3. A method as recited in claim 1 or claim 2, wherein the 
information packet includes at least one of (i) a user name, 
(ii) a user email address, and (iii) a user preference. 

4. A method as recited in claim 3, wherein the user 60 
preferences include any filtering requested by a user with 
respect to viewing Web sites. 

5. A method as recited in claim 1 or claim 2, wherein the 
other services available in the server system comprise at 
least one of an email service and a proxy service. 65 

6. A method as recited in claim 1 or claim 2, wherein the 
log-in service and the user database reside in a common 
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security zone that is separate from one or more other security 
zones containing other services available in the server 
system. 

7. In a networked computer system includes a server 
system having a plurality of remote servers and a plurality 
of proxy servers, and a plurality of client systems, all of 
which are logically interconneted so that the client systems 
can access informational content stored at the one or more 
remote servers, and wherein at least one of the client systems 
is comprised of an electronics unit which provides a graphi- 
cal user interface by which the Internet can be accessed and 
browsed using a conventional television set as a display, a 
method of increasing security of user database information 
retained by the server system by reducing the number of 
direct accesses of such user database information when 
accessing requested services provided by the server system, 
comprising acts of: 

receiving at one of the servers of the server system a 
log-in request from a client system; 

as part of a log-in service, retrieving user information 
from a user database and generating an information 
packet from the user information that includes access 
privileges in relation to other services available in the 
server system; 

sending the information packet to the client system; and 

thereafter, for any other service for which access is 
requested by the client system, the server at which said 
any other service request is received resorting to the 
information packet rather than the user database to 
regulate access to the requested service, so as to limit 
direct access to the user database to the initial log-in 
service. 

8. In a networked computer system includes a server 
system having a plurality of remote servers and a plurality 
of proxy servers, and a plurality of client systems, all of 
which are logically interconnected so that the client systems 
can access informational content stored at the one or more 
remote servers, and wherein at least one of the client systems 
is comprised of an electronics unit which provides a graphi- 
cal user interface by which the Internet can be accessed and 
browsed using a conventional television set as a display, a 
computer program product for implementing a method of 
increasing security of user database information retained by 
the server system by reducing the number of direct accesses 
of such user database information when accessing requested 
services provided by the server system, comprising a com- 
puter readable medium for storing executable instructions 
for implementing the method, and wherein the method 
comprises acts of: 

receiving at one of the servers of the server system a 
log-in request from a client system; 

as part of a log-in service, retrieving user information 
from a user database and generating an information 
packet from the user information that includes access 
privileges in relation to other services available in the 
server system; 

sending the information packet to the client system; and 

thereafter, for any other service for which access is 
requested by the client system, the server at which said 
any other service request is received resorting to the 
information packet rather than the user database to 
regulate access to the requested service, so as to limit 
direct access to the user database to the initial log-in 
service. 

9. A method as recited in claim 7 or claim 8, wherein the 
information packet includes at least one of (i) a user name, 
(ii) a user email address, and (iii) a user preference. 
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10. A method as recited in claim 9, wherein the user 12. A method as recited in claim 7 or claim 8, wherein the 
preferences include any filtering requested by a user with log-in service and the user database reside in a common 
respect to viewing Web sites. security zone that is separate from one or more other security 

zones containing other services available in the server 

11. A method as recited in claim 7 or claim 8, wherein the 5 system, 
other services available in the server system comprise at 

least one of an email service and a proxy service. ***** 
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